1#!/usr/bin/env bash
2
3# Copyright 2022 The Sigstore Authors
4#
5# Licensed under the Apache License, Version 2.0 (the "License"";
6# you may not use this file except in compliance with the License.
7# You may obtain a copy of the License at
8#
9# http://www.apache.org/licenses/LICENSE-2.0
10#
11# Unless required by applicable law or agreed to in writing, software
12# distributed under the License is distributed on an "AS IS" BASIS,
13# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
14# See the License for the specific language governing permissions and
15# limitations under the License.
16
17set -o errexit
18set -o nounset
19set -o pipefail
20
21: "${GIT_HASH:?Environment variable empty or not defined.}"
22: "${GITHUB_RUN_ID:?Environment variable empty or not defined.}"
23: "${GITHUB_RUN_ATTEMPT:?Environment variable empty or not defined.}"
24
25COSIGN_CLI=./cosign
26
27if [[ ! -f cosignImagerefs ]]; then
28 echo "cosignImagerefs not found"
29 exit 1
30fi
31
32echo "Signing cosign images using Keyless..."
33$COSIGN_CLI sign -y -a sha="$GIT_HASH" -a run_id="$GITHUB_RUN_ID" -a run_attempt="$GITHUB_RUN_ATTEMPT" $(cat cosignImagerefs)
View as plain text